On 18 Apr 2015, at 5:44, Chuck Anderson wrote:
2. Use anycast to make your multiple DNS servers appear as one IP, and put that one IP in /etc/resolv.conf. You can have multiple IPs, but each one should still be anycasted.
The problem with using only one IP is that if someone accidentally fat-fingers an ACL or a routing statement or a firewall rule or whatever, all recursive DNS is hosed.
So, anycasting *two* IP addresses (on differing netblocks) is probably warranted.
----------------------------------- Roland Dobbins <[email protected]> _______________________________________________ dns-operations mailing list [email protected] https://lists.dns-oarc.net/mailman/listinfo/dns-operations dns-jobs mailing list https://lists.dns-oarc.net/mailman/listinfo/dns-jobs
